Submit #556283: YXJ2018 Examination system 1.0 Any user password modificationinfo

TitleYXJ2018 Examination system 1.0 Any user password modification
DescriptionAny vulnerability in the password modification function of any user will lead to serious security risks. Attackers can use this to completely take over user accounts, steal sensitive data, escalate permissions, or perform malicious operations, which will not only cause data leakage and business losses, but may also lead to legal prosecution and reputation crisis. Such vulnerabilities usually arise from defects in the verification mechanism or insufficient permission control, and must be prevented by strengthening security measures such as identity authentication and operation auditing.
Source⚠️ https://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/74
User
 lingmeng (UID 83892)
Submission04/11/2025 05:43 (1 Year ago)
Moderation04/21/2025 15:48 (10 days later)
StatusAccepted
VulDB entry305776 [YXJ2018 SpringBoot-Vue-OnlineExam 1.0 /api/studentPWD studentId unverified password change]
Points20

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!